Featured Article

More Than 200 Cryptomining Packages Flood npm and PyPI Registry

By Ax Sharma on August 19, 2022 vulnerabilities

More than 200 malicious packages have flooded npm and PyPI registries to install cryptominers on Linux hosts.

Read More

SHARE:

Sonatype_Blog_Logo_White
READ MORE

Maven Central and Sigstore

By Jason Swank on March 03, 2022 Product Strategy

2 minute read time

Sonatype has been investing heavily in Maven Central, modernizing the platform & providing a developer experience of contemporary software registries.
Read More...
GettyImages-638966228
READ MORE

The Central Repository is Moving to HTTPS

By Terry Yanko on December 20, 2019 central maven repository

3 minute read time

Beginning January 15, 2020 The Central Repository will no longer support communication over HTTP. We are moving to HTTPS to ensure greater security.
Read More...
READ MORE

Enhancing SSL Security and HTTP/2 Support for Central

By Brian Fox on May 21, 2018 Central

1 minute read time

TLS and HTTP/2 changes coming to central
Read More...
GettyImages-1078726270
READ MORE

All Things Maven: A Discussion with Brian Fox

By Derek Weeks on November 08, 2017 Central

21 second read time

In this episode, you will hear the history of Maven Central, war stories, how Minecraft DDoSed the service, and plans for the future of Maven and Java 9.Special
Read More...
READ MORE

SSL Connectivity for all Central Repository users Underway

By Brian Fox on July 30, 2014 Sonatype Says

4 minute read time

We’ve had quite a bit of public scrutiny recently over how we’ve chosen to provide SSL access to Central for the last two years. At Sonatype, we have a history of investments in the Maven Central

Read More...
READ MORE

Nexus holds the top market share, the data speaks for itself

By Manfred Moser on June 26, 2014 repository manager

2 minute read time

RebelLabs recently put out their Java Tools and Technologies Landscape report and we were very pleased to see Nexus chosen as the repository manager of choice by 64% of developers. We saw this same

Read More...
READ MORE

A Home for the Central Repository

By Manfred Moser on March 20, 2014 Nexus

2 minute read time

A Home for the Central Repository
Read More...
READ MORE

The Tipping Point: Human Speed vs. Machine Speed

By Derek Weeks on March 05, 2014 Sonatype Says

3 minute read time

What can the financial services industry learn from the U.S. Department of Homeland Security? In this third segment of my blog series on open source component security as it relates to the recently

Read More...
READ MORE

Who Really Wrote Healthcare.gov?

By Wayne Jackson on December 23, 2013 Software Supply Chain

3 minute read time

Who Really Wrote Healthcare.gov?
Read More...
Twitter LinkedIn Facebook YouTube GitHub
Products
Free Tools
Solutions
Resources
Customer Portal
Company
SON_logo_white@2x copy trimmed

Sonatype Headquarters - 8161 Maple Lawn Blvd #250, Fulton, MD 20759

Tysons Office - 8281 Greensboro Drive – Suite 630, McLean, VA 22102

Australia Office - 60 Martin Place Level 1, Sydney, NSW 2000, Australia

London Office -168 Shoreditch High Street, E1 6HU London

Copyright © 2008-present, Sonatype Inc. All rights reserved. Includes the third-party code listed here. Sonatype and Sonatype Nexus are trademarks of Sonatype, Inc. Apache Maven and Maven are trademarks of the Apache Software Foundation. M2Eclipse is a trademark of the Eclipse Foundation. All other trademarks are the property of their respective owners.

Terms of Service    Privacy Policy    Modern Slavery Statement    Event Terms and Conditions   Do Not Sell My Personal Information